After being put through what some would only describe as torture this morning (interval training with my wife at gym), I arrived home to relax and check my e-mail. My mailbox was filled with Twitter notifications and upon closer inspection it seemed apparent that I had been awarded the title of vExpert 2012! This is an absolutely huge honour for me, and I must say, it caught me completely off guard.
I just wanted to send out a huge congratulations to all the new and returning vExpert awardees for 2012! There are so many talented individuals out there putting out an immense amount of great content, discussion, and effort when it comes to all things VMware. I must say, it has been a great year – I have learnt so much from the community, and thoroughly enjoyed being a part of it.
A special thanks go out to two people in particular who spring to mind when it comes to the VMware community, namely; Alex Maier and John Troyer. Thanks to you guys for managing and being the driving force behind the whole community! I would also like to send a special shout out to, and congratulate three of my work colleagues at Xtravirt who were also awarded the vExpert 2012 title today – Gregg Robertson, Darren Woollard and Paul Wood. It is Paul and my first year being awarded vExpert status, and Darren and Gregg’s second. Well done all!
To finish off, here is the official list of vExperts for 2012, as well as a definition of the vExpert title/award from VMware
The VMware vExpert Award is given to individuals who have significantly contributed to the community of VMware users over the past year. vExperts are book authors, bloggers, VMUG leaders, tool builders, and other IT professionals who share their knowledge and passion with others. These vExperts have gone above and beyond their day jobs to share their technical expertise and communicate the value of VMware and virtualization to their colleagues and community.
So here’s to another fantastic year ahead for the community and many more to come!
Just a very quick blog post written over lunch today to share some screenshots of the VMware View client for Android running on my HP Touchpad (with Android 4 / Cyanogenmod running).
I have set up a simple VMware View 5 environment in my home lab and wanted to test out the Android client. I had recently installed Cyanogenmod on the Touchpad so it can now dual boot WebOS or Android 4. As there is no View client for WebOS, I simply grabbed a copy of the View client for Android and tried a quick internal test of my View 5 lab.
The interface is nice and clean / well designed (as you would expect for an application from VMware). After connection you are presented with your entitled desktops and can then connect. A gesture summary info screen appears to show you how to perform different functions, such as right-clicks, dragging the mouse cursor, bringing up the keyboard etc… The gesture controls really do work well, especially when you compare them to other tablet based remote control apps.
Below are a few screenshots of the actual View client running on my HP Touchpad and connected to a Windows 7 Desktop.
Login screen
Clean interface
Gesture types / info
Connected to a Windows 7 Desktop in the View client
Conclusion: The View client for Android runs just fine on a modded (Cyanogenmod) HP Touchpad device – as expected!
Example showing VIBs loaded on a host with a search of the vendor name "VMware"
The other day I was trying to find a list of Custom VIBs (VMware Installation Bundles) that were installed on an ESXi host. The reason was that I just wanted to verify that the VIB had actually installed correctly or not. I threw the query out on Twitter and of course @alanrenouf had a solution in next to no time.
So Alan’s solution is to use the Get-EsxCli cmdlet and specify the host name using the VMHost parameter. After that, he simply uses the code property “software” to gain access to the list of VIBs on the host. E.g.
I have used esxcli on its own before but didn’t realise that PowerCLI had this cmdlet built in to interface with hosts in the same way that esxcli would. This is a great solution and means you can fetch so much more in this regard.
To filter things down a bit more and find the exact match for the Dell OMSA VIB I was looking out for, I used a where clause looking for a match for “dell” on the Vendor property:
$ESXCLI.software.vib.list() | Select AcceptanceLevel,ID,InstallDate,Name,ReleaseDate,Status,Vendor,Version | Where {$_.Vendor -match "dell"}
Thanks again to Alan Renouf for pointing out the use of Get-EsxCli and for providing an example!
In [part 1] of this series of posts, I explored SharpSSH, and how to use this to SSH into network devices via PowerShell or PowerCLI. I found this extremely useful, and managed to automate a process of retrieving some SHA1 SSL fingerprints from a few clusters of ESX hosts in the process. I did however find that loading the dll and functions necessary to get this bit of automation done was a little tedious. I had heard about wodSSH via the get-scripting podcast and decided I would need to take a look at this.
If you are planning on using wodSSH, you should start by downloading it here. Note that you should definitely buy a license if you are going to be using this for your job or day to day automation – the license is not to expensive if you consider the kinds of automation you could achieve with this! For this blog post I am just using the trial version in my lab environment at home to try out – the trial pops up a “nag screen” every now and then to indicate you are unlicensed. Once downloaded, install wodSSH and the libraries will now be available for use on your machine.
Download the script below, or take a look at it in the Syntax Highlighted area below – this is an example of how I was able to SSH into a cluster of ESXi hosts and run a remote command via SSH through PowerCLI. In this example, a table is returned with Host names, along with their SHA1 fingerprint information. It is possible to retrieve this info (as of ESXi 5 I believe) in PowerCLI, but for this example I just wanted to demonstrate the use of SSH and PowerShell / PowerCLI.
You will notice that on line 09, we load the wodSSH library using the New-Object cmdlet. After this we continue to setup some properties for our $ssh connection object. A regex check is used to determine when are connected to a host and have an SSH shell prompt ($ssh.WaitFor(“regex:[$%>;] $”). We then use $cmdresult to capture the result of running an SSH command via our connection to our current ESXi host. To finish capturing the output of the command on our remote host, we use a regex check again (“regex:[~#]”). You’ll notice that the actual command is also on this line, i.e. line 18 (openssl). After the result is captured, we disconnect our SSH session, then proceed to build our small report array. At the end of the script, we output the $Report array to the screen.
Results of the above script in PowerCLI
As far as I can see, the wodSSH library can open up a whole new world of automation for you in the data centre. Think of the possibilities – you could automate just about everything, from switches, routers, Linux/Unix hosts / ESXi Hosts to iLO / DRAC and other management cards. Essentially, anything that accepts commands via SSH! If you have any automation stories using wodSSH, or just PowerShell or PowerCLI in general, I would love to hear about them – so feel free to drop a comment or two on this post.
I was listening to GetScripting podcast #29 the other day. The guest was Pete Rossi (PoSH Pete), and in the discussion he discussed data centre automation. Part of the automation he has set up involves wrapping SSH with PowerShell, and by doing so he is able to automate various functions on devices that can be SSH’d onto. This got me thinking of potential use cases. Soon enough I already had a couple of use case scenarios that could do with automating using SSH and PowerCLI. Pete mentioned he mainly uses an SSH component by a company called “WeOnlyDo Software”, however Alan Renouf also mentioned having heard of “SharpSSH”. I decided I wanted to try both out and figure out how to use both, so with that I set out figuring out how to get them working with PowerShell and PowerCLI. In this post (Part 1) I will cover using the SharpSSH DLL. In Part 2 I will go into the (easier in my opinion) wodSSH component (also paid for) method.
SharpSSH (based on Tamir Gal’s .NET library)
I believe Tamir Gal originally created this library, however it seems to now be maintained by others.
First of all, for SharpSSH to work with PowerShell or PowerCLI, you’ll need to get the relevant DLL that will be loaded by your script. I found a version of SharpSSH being actively worked on and improved by Matt Wagner on Bitbucket. I downloaded this version (called SharpSSH.a7de40d119c7.dll) to get started. To load the functions that we’ll be using to SSH in to devices, I used the following PowerShell function. Just be sure to reference in the correct path of the SharpSSH DLL that you downloaded above in this function. Download the function below:
[download id=”13″]
Then as long as the functions are loaded in your PoSH session, you should be able to run the example below.
How to SSH into ESXi hosts and retrieve SHA1 Fingerprints using PowerCLI and SharpSSH
Example output after running the script detailed below against multiple ESX hosts
Now, first off I’ll say that this isn’t necessarily the best way of retrieving SSL Fingerprints from your ESXi hosts in terms of security – you’d want to do this from the DCUI of the ESXi hosts to confirm the identity of each host is as you expect. (See this blog post and comments over at Scott Lowe’s blog for more detail on the security considerations). With that being said, here is my implementation of SharpSSH, used to SSH into each ESXi host (from a Get-VMHost call) and retrieve the SHA1 Fingerprints. The script will create and output a table report, listing each ESX/ESXi host as well as their SHA1 Fingerprint signatures.
Background for the Script
I believe this is actually quite an easy bit of info to collect using PowerCLI and the ExtensionData.Config properties on newer hosts / vSphere 5, but in my environment I was working with, all my ESX 4.0 update 4 hosts did not contain this Fingerprint info in their ExtensionData sections when queried with PowerCLI. Therefore I automated the process using SSH as I could use the command “openssl x509 -sha1 -in /etc/vmware/ssl/rui.crt -noout -fingerprint” to generate the Fingerprint remotely on each host via SSH. So with that in mind, here is the script that fetches this info. Note it will prompt for root credentials on each host that is connected to – this could probably be easily changed in the Function (downloaded from above). So here is the final script which will list all ESXi hosts and their SHA1 Fingerprints:
Well, I hope this helps you out with a way to automate SSH access to devices to retrieve information or change settings. This could easily be adapted to send SSH commands to any other kind of device that accepts SSH as a method of login. Switches, Routers, linux servers, you name it! In my next blog post I will be showing you how to use the wodSSH library (We Only Do Software) to do SSH in PowerShell or PowerCLI – I have found this method to be a bit easier to use when compared with SharpSSH! So look out for my next post coming soon!
